package com.atguigu.lease.web.admin.custom.interceptors;

import com.atguigu.lease.common.exceptions.LeaseException;
import com.atguigu.lease.common.jwt.JwtUtil;
import com.atguigu.lease.common.result.ResultCodeEnum;
import jakarta.servlet.http.HttpServletRequest;
import jakarta.servlet.http.HttpServletResponse;
import org.springframework.stereotype.Component;
import org.springframework.util.ObjectUtils;
import org.springframework.web.servlet.HandlerInterceptor;

/**
 * projectName: com.atguigu.lease.web.admin.custom.interceptors
 *
 * @author: 赵伟风
 * description: 登录保护拦截器
 * todo: 执行了拦截器，就是认证资源
 */
@Component
public class LoginProtectInterceptor implements HandlerInterceptor {

    @Override
    public boolean preHandle(HttpServletRequest request, HttpServletResponse response, Object handler) throws Exception {
        //1.检查有没有token
        String accessToken = request.getHeader("access_token");
        if (ObjectUtils.isEmpty(accessToken)){
            throw new LeaseException(ResultCodeEnum.ADMIN_LOGIN_AUTH);
        }
        //2.检查token是否有效和过期
        JwtUtil.parseToken(accessToken);
        //3.放行
        return true;
    }
}
